Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

a7ce150abe...65.pdf

windows7-x64

1

a7ce150abe...65.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 13:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a7ce150abea3e24b4ee632cee4e6ab65.pdf

  • Size

    66KB

  • MD5

    a7ce150abea3e24b4ee632cee4e6ab65

  • SHA1

    0872fae9c8d40bcb96e11233fa7e5fad7553499d

  • SHA256

    d2e23c7c7549bc4af1ba72d2cb2bbf5dd72475bb3d94c4096ec5ef7d6c6727e7

  • SHA512

    597d166cb8816b0efa7a10df30efb1d6a3b90756ea01ca0959175b5b0de6c5fe49ae139a1518f3b3de8fbe580b68e635a2e5f3e32eb0fd7b3a32959531a1513a

  • SSDEEP

    1536:0oXVNmDuKSa+DsOf4bLIa52vgqSn4KwqRn8eDJUouytuHe8:KDuNltawbS4SnlVFtu1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a7ce150abea3e24b4ee632cee4e6ab65.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2516

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    81232393e1c10d21bc1cb0a8f5bb8d38

    SHA1

    5271f4c881108a3bc7629000072f859833aa0ad3

    SHA256

    7716edc19f6782d3aa52f74f06368558f8bf9c52273f72ffe48ff40502c72d84

    SHA512

    200bf1ffdc127c4d338d45dcd7f1d719d110ad4d98d6b0a157c4c45d69262fcc57190065d1ec7830200af40b0ed8b629cccc7f82b97293d7cdbee3dc0882f577

    Download Submit